Kubernetes Podcast from Google – Episode Summary

Episode Title: Kubernetes History Inspector, with Kakeru Ishii
Hosts: Abdel Sghiouar, Kaslin Fields
Release Date: February 13, 2025

Introduction

In this episode of the Kubernetes Podcast from Google, host Abdel Sghiouar steps in solo as Kaslin Fields is on vacation. Abdel welcomes Kakeru Ishii, the initiator of the Kubernetes History Inspector (KHI), an innovative open-source tool designed to visualize Kubernetes logs and streamline the troubleshooting process. The conversation delves deep into the functionalities of KHI, its development journey, and the motivations behind its open-sourcing.

Guest Background

Kakeru Ishii is based in Tokyo and works as a support engineer at Google. With a strong background in handling complex Kubernetes issues, Kakeru leveraged his experience to develop KHI, addressing the challenges faced by support teams when diagnosing cluster problems through extensive log analysis.

Notable Quote:

"I needed to understand the macroscopic view of the cluster. So that's why I needed to create it." – Kakeru Ishii [07:02]

Kubernetes History Inspector (KHI) Overview

KHI is introduced as a log visualizer tailored for Kubernetes environments. Before KHI, troubleshooting required meticulous examination of various logs such as Pod logs, Kubelet logs, ContainerD logs, and more, often necessitating high expertise to filter and interpret the vast amounts of data.

Notable Quote:

"It provides detailed timeline visualization or resource relationship diagrams just from logs available on your log backend." – Kakeru Ishii [04:20]

Features and Functionality

KHI offers several key features that simplify the troubleshooting process:

• Timeline Visualization: Creates a detailed timeline of events from logs, making it easier to trace issues.
• Resource Relationship Diagrams: Illustrates relationships between various Kubernetes resources based on log data.
• No Installation Required: Operates as a Docker container, allowing users to quickly deploy without modifying their clusters.
• Extensible Architecture: Utilizes a Directed Acyclic Graph (DAG) based log parser system, enabling easy extension and customization for different log types.

Notable Quote:

"KHI is basically based on the directed acyclic graph. It's DAG based log parser system. So that makes KHI to be extensible." – Kakeru Ishii [12:30]

Use Cases and Benefits

One prominent use case discussed is troubleshooting intermittent authentication errors related to Workload Identity in Google Kubernetes Engine (GKE). KHI enabled Kakeru to correlate logs from multiple sources—customer pods, ContainerD, third-party security tools, and system workloads—thereby identifying that a third-party security product restarting ContainerD was the root cause.

Notable Quote:

"This kind of difficult problem involving multiple components on the cluster can be solved with Ketchi easily." – Kakeru Ishii [09:15]

Technical Insights

The hosts explore the technical underpinnings of KHI:

• WebGL Interface: KHI leverages WebGL for rendering its graphical interface, providing a rich and responsive visualization experience.
• In-Memory Processing: Designed for rapid investigation, KHI processes logs in memory to deliver quick insights without the need for persistent storage.
• Parser Dependencies: Implements a sequence of parsers based on their dependencies to accurately correlate related log entries.

Notable Quote:

"For me, the usual web development is harder than the WebGL for me because I needed to learn AngularJS to build this application." – Kakeru Ishii [14:25]

Open Source and Community Engagement

KHI is available on GitHub under the Google Cloud organization, encouraging community contributions and star ratings. Kakeru emphasizes the tool's readiness for extension, hinting at future documentation to guide users in customizing log parsers to fit their specific needs.

Notable Quote:

"We'll leave the link in the show notes. Go check it out. Go try it out. Give it a star on GitHub." – Abdel Sghiouar [17:04]

Future Developments and AI Integration

The discussion touches upon the potential integration of Large Language Models (LLMs) with KHI. While Kakeru acknowledges the possibilities, he underscores the continued importance of visualization in understanding complex issues, suggesting that AI can complement but not entirely replace visual tools.

Notable Quote:

"The visualization is still important for the LLM." – Kakeru Ishii [16:36]

Conclusion and Key Takeaways

KHI emerges as a powerful tool for Kubernetes administrators and support engineers, simplifying the complex task of log analysis through intuitive visualizations. Its open-source nature invites community collaboration, promising continual enhancements and broader applicability.

Key Takeaways:

• Simplified Troubleshooting: KHI reduces the complexity of diagnosing Kubernetes issues by visualizing log data.
• Collaborative Utility: Facilitates better collaboration among support teams through shared visual insights.
• Extensibility: The DAG-based parser system allows users to tailor KHI to their unique logging environments.
• Open Source Advantage: Availability on GitHub encourages contributions and widespread adoption.

Notable Quote:

"That's why this visualization is still important." – Kakeru Ishii [16:37]

For more information about the Kubernetes History Inspector, visit the GitHub repository and consider contributing or starring the project to support its development.